Sydkraft AB is looking for an Information Security Officer (ISO)

Passion for energy
Uniper likes passionate employees and colleagues. Driven by passion, we ensure high-quality deliveries of electricity to industrial and domestic customers – every second of the day, all year round. With personal commitment, dialog, diversity and equality at work, we work together to deliver social benefit in real time – while simultaneously focusing our innovative efforts on tomorrow’s energy solutions. Or as we say: “Passion for energy.” We need more people who are passionate about energy and really want to make a difference. Are you one of them?
Uniper way - how we work
Our employees are paving the way for Uniper’s success and future. We work together and engage in meaningful dialog. At Uniper, employees are able to develop and strengthen their individual skills. We embrace our entrepreneurial spirit and take responsibility, at every level of the Group. We have a joint approach, and our core values guide the Group’s daily work and how we perform our various activities. We call it “The Uniper Way.”
What we are looking for
We are looking for an Information Security Officer (ISO) to our Swedish offices in Malmö or Stockholm. In this role you will be reporting to the Chief Information Security Officer (CISO) of Uniper. Your work includes to support the national Board of Management in Sweden to ensure compliance with European and local legislation.
This means working with:
• Implementation and maintenance of an ISMS and Information Security strategy in assigned units
• Cooperate with central IS organization in developing the Uniper IS policy framework
• Executing Information Security governance for assigned units
• Collaborate with the local Information Security Manager (ISM) and nominated Information Security Representatives (ISR) with steering information security management with local suppliers (risk, compliance, etc.)
• Taking national role like the NIS Responsible Officer under the Security of Networks & Information Systems (NIS) Regulations regarding contact with the national competent authorities and reporting of incidents unless otherwise delegated inside the organization.
• Organisation of Penetration Testing and internal and external ISMS Audits and manage exceptions with regards to Uniper’s information security policies and standards
• Remediation of findings of information security audits and communicate results to the Compliance & Regulatory Reporting function.
• Implementation of information security awareness measures and rollout performance management process, collect and evaluate KPIs
Some travel requirements to local Uniper locations (OKG, Sundvall Hydropower or Thermal Power Plants) is necessary and the collaboration with Authorities might also mean to travel to some alignment workshops. Even some traveling abroad might be necessary, to collaborate with the international InfoSec Tribe.
Uniper is part of Sweden's critical infrastructure and our operations are covered by, among other things, rules related to protective security, export control and nuclear non-proliferation. We will therefore carry out security clearance of all positions and complement with register control for security classified positions, according to the Protection Security Act. Health and drug tests are performed if applicable.
Who we are seeking
You have a university degree in Computer Science with a focal area of Information Security or similar work experience. Solid understanding of IT/OT information security principles, standards, practices and technologies is meritorious, as well as good knowledge across multiple IT domains, in particular Application and Cloud security (MS Azure). Certifications e.g. CISSP and/or significant experience with information security industry standards and tools is also meritorious.
You like working with different teams and collaborate internationally. Have a proven ability to make pragmatic tactical decisions whilst still aligning with the business and technology strategy. Proven strong conceptual and analytic skills and an ability to communicate security-related concepts to a broad range of technical and non-technical staff at all levels in an articulate, engaging, and confident manner. In order to succeed in this role, you must be fluent in spoken Swedish and English (required) and German (optional).
Contact
For questions, please don’t hesitate to contact:
Recruiting manager, Tilmann Proske
tilmann.proske@uniper.energy
+49 151 113 56 540

Union representatives:
Charlotte Pennander, Unionen
+46 705 885879
Laila Klintesten, Unionen
+46 708 244689
Magnus Nicklasson, Sveriges Ingenjörer
+46 76 1154687